Difference between revisions of "BlackBerry"

From ForensicsWiki
Jump to: navigation, search
(added Reference)
(Models)
 
(21 intermediate revisions by 9 users not shown)
Line 1: Line 1:
=Overview=
+
[[Image:BlackBerry.jpg|thumb|right]]
The Blackberry is a wireless handheld device that supports e-mail, mobile phone capabilities, text messaging, web browsing, and other wireless information services.
+
  
 +
The [[RIM]] '''BlackBerry''' is a personal wireless handheld device that supports e-mail, [[mobile phone]] capabilities, text messaging, web browsing, and other wireless information services. It is most commonly utilized for business purposes.
  
 +
== History ==
  
==History==
+
The BlackBerry was first introduced in 1999 by a company called [[Research In Motion]] ([[RIM]]).
The Blackberry was first introduced in 1999 by a company called Research in Motion (RIM).
+
  
 +
== Operating System ==
  
 +
The [[BlackBerry OS]] provides easy access to applications such as e-mail, to do list, memos, address book, and many other features. With the newer operating systems 4.1 and later, composing messages are much more convenient by providing auto text.
  
=Operating System=
+
== Models ==
The Blackberry OS provides easy access to applications such as email, to do list, memos, address book, and many other features. With the newer operating systems 4.1 and later, composing messages are much more convenient.
+
 
+
=Models=
+
  
 +
* 6200 Series
 +
* 6500 Series
 +
* 6700 Series
 
* 7100 Series
 
* 7100 Series
 
+
* 7130 Series
 +
* 7200 Series
 
* 7700 Series
 
* 7700 Series
 
+
* 7500 Series
* 7520
+
+
 
* 7700 Series
 
* 7700 Series
 
+
* 8100 Series
 +
* 8300 Series
 
* 8700 Series
 
* 8700 Series
 +
* 8800 Series
 +
* BlackBerry Storm
 +
* BlackBerry Bold
 +
* BlackBerry Pearl
 +
* BlackBerry Curve
  
=Forensics=
+
== Forensics ==
 
+
RIM's push technology adds a new and different look at the forensics investigation of a PDA. Unlike traditional PDA's that need to be synchronized with a host computer with the use of a cradle or docking station, Blackberry's are synchronized wirelessly by the pushing of data onto the device. This means that the data on the device could potentially be changing at any moment. Also, a blackberry is never really off. What seems like “off” to the user is really only the display, keyboard, and radio being disabled. So when the device is powered back on to the user, items that have been waiting to be pushed to the device from the server begin immediately. This does not give the forensics examiner the time needed to shut down the device. For this reason, the first step in the acquisition of a Blackberry is to leave it off. The device should only be turned back on when it is in a place that cannot receive a signal and thus nothing can be pushed to it.
+
 
+
=StrongHold Bag=
+
In order to prevent the device from connecting to the network, the Blackberry can be placed inside of a Faraday Bag, which blocks radio transmissions.  Paraben Corporation, one of the developers of cell phone forensics equipment, produces such a Faraday Bag dubbed the Wireless StrongHold Bag.  First responders can help to maintain the integrity of evidence contained in wireless devices through the use of this equipment.  It should be noted that power should be supplied to the device if the data is volatile in nature, but the cable may introduce a pathway for electromagnetic signals to penetrate the controlled environment.
+
 
+
Paraben's Wireless StrongHold Bag is weaved from three layers of nickel, copper, and nylon silver.  The company also produces a StrongHold Tent, which allows the investigator to enter the radio signal dampened environment and also to bring in other equipment, such as laptops, in order to facilitate the investigation.
+
 
+
More information may be obtained from the Paraben website [http://www.paraben-forensics.com Paraben Corporation].
+
 
+
  
'''References:'''
+
[[Blackberry Forensics|Forensics on the RIM platform]]  is complicated by the fact that this is a "push" device --- the RIM server will push device to the [[PDA]] whenever the PDA's radio is on and there is data available.  
----
+
[http://www.oreillynet.com/pub/a/wireless/2005/09/15/what-is-blackberry.html "What is a Blackberry?"]
+
  
[http://www.discoverblackberry.com/ Discover Blackberry]
+
RIM devices also feature a remote self-destruct feature. This feature cannot be activated if the radio is turned off, of course.
  
[http://www.rh-law.com/ediscovery/Blackberry.pdf Forensic Examination of a RIM (BlackBerry) Wireless Device]
+
Both of these features mean that you need to be sure that the radio is off when doing a forensic investigation.
  
[http://www.paraben-forensics.com/catalog/product_info.php?cPath=26&products_id=173&osCsid=cf1086f4531222932094533fe4420d74 Wireless Stronghold Bag ]
+
Depending on the setting, entering a wrong password a certain number of times will wipe the device.
  
[http://www.pdastreet.com/articles/2006/3/2006-3-7-Tip-BlackBerry-OS3.html]
+
== References ==
 +
* [http://www.blackberry.com/ BlackBerry.com], the BlackBerry main site.
 +
* [http://www.rim.com/ Research In Motion], the manufacturer of the BlackBerry.
 +
* [http://www.blackberryfreeware.org/ BlackBerry Freeware Directory], community-driven free software collection
 +
* [http://www.blackberryfaq.com BlackBerry Frequently Asked Questions], Largest collaboration of Answers to Questions for BlackBerry
 +
* [http://www.oreillynet.com/pub/a/wireless/2005/09/15/what-is-blackberry.html What is a BlackBerry?]
 +
* [http://www.rh-law.com/ediscovery/Blackberry.pdf Forensic Examination of a RIM (BlackBerry) Wireless Device]
 +
* [http://www.paraben-forensics.com/catalog/product_info.php?cPath=26&products_id=173&osCsid=cf1086f4531222932094533fe4420d74 Wireless Stronghold Bag]

Latest revision as of 11:24, 1 December 2008

BlackBerry.jpg

The RIM BlackBerry is a personal wireless handheld device that supports e-mail, mobile phone capabilities, text messaging, web browsing, and other wireless information services. It is most commonly utilized for business purposes.

History

The BlackBerry was first introduced in 1999 by a company called Research In Motion (RIM).

Operating System

The BlackBerry OS provides easy access to applications such as e-mail, to do list, memos, address book, and many other features. With the newer operating systems 4.1 and later, composing messages are much more convenient by providing auto text.

Models

  • 6200 Series
  • 6500 Series
  • 6700 Series
  • 7100 Series
  • 7130 Series
  • 7200 Series
  • 7700 Series
  • 7500 Series
  • 7700 Series
  • 8100 Series
  • 8300 Series
  • 8700 Series
  • 8800 Series
  • BlackBerry Storm
  • BlackBerry Bold
  • BlackBerry Pearl
  • BlackBerry Curve

Forensics

Forensics on the RIM platform is complicated by the fact that this is a "push" device --- the RIM server will push device to the PDA whenever the PDA's radio is on and there is data available.

RIM devices also feature a remote self-destruct feature. This feature cannot be activated if the radio is turned off, of course.

Both of these features mean that you need to be sure that the radio is off when doing a forensic investigation.

Depending on the setting, entering a wrong password a certain number of times will wipe the device.

References